$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft File: IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json) Hash identifier: ADFxO+GdcETFFxBr5sqcQ8UbGCKV2VdJthqM+1C9pnQ= Subject key identifier: 89:2D:18:0B:60:B8:ED:6C:2E:06:FE:DE:1A:CC:FB:AE:1B:BC:8A:EA Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft Manifest number: 96 Signing time: Sun 19 May 2024 06:59:54 +0000 Manifest this update: Sun 19 May 2024 06:59:53 +0000 Manifest next update: Sun 26 May 2024 06:59:53 +0000 Files and hashes: 1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: O2AqqtN49S1A0gU5UzSjGlYsvkG+WaUepN62It4KbCY=) 2: 838096CA3BD311EE84056461C4F9AE02.roa (hash: xuVId9Hm47KrucZMsjSwL2x1LKezRg2UYb4YAMdWzpQ=) 3: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: zGK0q5txS96FydXJDIEXpJYa3Lt/UXyszOqHKnQJIS0=) 4: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: H1ge2MPSBncXeUxZjwux7oLKDAw5t7dscZ/naMsDL0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: May 19 06:59:53 2024 GMT Not After : May 26 06:59:53 2024 GMT Subject: CN=6649a36a-b900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5b:18:5a:e7:b3:7e:76:80:8c:50:fc:21:fd: 68:33:bf:bc:b2:a1:9b:51:ba:83:37:d2:df:15:04: 20:60:9b:41:59:65:de:60:11:d3:4a:e4:b7:96:87: 30:f0:34:ce:e5:0f:a6:82:55:7f:01:ef:9b:17:f1: 85:55:72:af:1d:53:55:6b:ab:91:f7:94:b1:91:78: 70:77:42:f5:bd:88:c2:ed:db:82:79:7d:29:02:90: 14:43:d1:52:fe:66:bc:cb:e7:90:53:34:b7:aa:2f: 23:13:ab:03:a1:13:e7:68:ca:a8:ed:85:bb:1f:81: be:50:65:26:92:65:8c:7d:a5:8a:31:70:19:58:06: 74:50:a0:64:1c:d0:5f:50:e8:18:20:85:8d:bf:02: 70:d2:80:f1:99:42:a7:89:8f:a7:8e:5f:f3:78:32: 52:89:ab:e7:b1:b7:67:2f:34:02:4d:6a:9e:a8:e3: 30:b1:82:88:cf:5b:4d:85:fd:99:c3:db:5e:0f:f8: a1:93:2a:aa:b6:2f:7f:01:b4:68:2e:2b:4d:c2:d9: fe:33:bf:12:1f:a8:c7:a3:37:74:f6:f1:91:16:1e: 30:78:9d:a9:6d:3f:98:32:dd:88:8d:ac:cf:95:38: 6a:45:49:16:31:b7:66:bf:dc:05:d8:b8:1f:65:0e: bf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2D:18:0B:60:B8:ED:6C:2E:06:FE:DE:1A:CC:FB:AE:1B:BC:8A:EA X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:93:50:18:e6:1f:81:0e:f1:65:10:08:8e:75:05:1c:69:1d: 72:48:08:65:1d:7e:18:2d:98:1b:99:06:ad:3d:79:b3:54:f5: f7:fb:4d:5f:07:3c:f3:fb:0e:de:54:e1:12:06:fa:1f:fa:c8: 38:8b:27:f0:10:63:ca:72:15:72:36:3f:49:5f:04:40:34:f5: eb:66:56:60:0d:ed:8e:d8:c7:c1:fc:4a:fe:cb:16:70:1a:57: f2:5e:2f:50:66:7f:54:65:b5:a6:02:9d:9a:be:8e:b3:2c:b5: 55:f4:c5:a1:81:87:64:ab:1b:cc:ed:31:f1:94:6e:b9:a8:bd: 4b:66:12:d7:51:23:2a:e9:48:3c:9d:62:26:d5:e9:1e:8b:c9: 00:05:2e:52:72:d7:2f:90:5f:2b:6d:84:ff:db:41:fc:ab:d9: 63:a0:73:03:5d:75:9e:7e:65:a2:9e:45:71:45:16:9c:eb:b8: cf:d8:e2:12:5a:d2:06:c2:f5:c8:30:20:30:2f:07:59:c1:1c: a6:35:40:a2:25:5c:8f:c6:a9:10:a7:91:98:d4:99:40:36:ff: e7:29:6d:3e:05:29:75:05:8f:cd:f7:e2:97:2d:f2:16:72:1c: 40:e5:df:1c:67:54:ed:9e:2a:ec:9c:14:7a:bb:a1:1e:97:43: 10:66:a7:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjQwNTE5MDY1OTUzWhcNMjQwNTI2MDY1OTUzWjAYMRYwFAYD VQQDEw02NjQ5YTM2YS1iOTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VsYWuezfnaAjFD8If1oM7+8sqGbUbqDN9LfFQQgYJtBWWXeYBHTSuS3locw 8DTO5Q+mglV/Ae+bF/GFVXKvHVNVa6uR95SxkXhwd0L1vYjC7duCeX0pApAUQ9FS /ma8y+eQUzS3qi8jE6sDoRPnaMqo7YW7H4G+UGUmkmWMfaWKMXAZWAZ0UKBkHNBf UOgYIIWNvwJw0oDxmUKniY+njl/zeDJSiavnsbdnLzQCTWqeqOMwsYKIz1tNhf2Z w9teD/ihkyqqti9/AbRoLitNwtn+M78SH6jHozd09vGRFh4weJ2pbT+YMt2IjazP lThqRUkWMbdmv9wF2LgfZQ6/WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIktGAtg uO1sLgb+3hrM+64bvIrqMB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDRE ZXVsUGJKR0piUzFZTFlfMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEk1AY5h+BDvFlEAiOdQUcaR1ySAhlHX4YLZgbmQatPXmzVPX3+01f Bzzz+w7eVOESBvof+sg4iyfwEGPKchVyNj9JXwRANPXrZlZgDe2O2MfB/Er+yxZw GlfyXi9QZn9UZbWmAp2avo6zLLVV9MWhgYdkqxvM7THxlG65qL1LZhLXUSMq6Ug8 nWIm1ekei8kABS5SctcvkF8rbYT/20H8q9ljoHMDXXWefmWinkVxRRac67jP2OIS WtIGwvXIMCAwLwdZwRymNUCiJVyPxqkQp5GY1JlANv/nKW0+BSl1BY/N9+KXLfIW chxA5d8cZ1TtnirsnBR6u6Eel0MQZqcc -----END CERTIFICATE-----Generated at Sun May 19 08:25:12 2024 by rpki-client on console-ams.rpki-client.org